Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/edcHiNTgK6pDhXaSyT0dTJQL_iE.roa
File: edcHiNTgK6pDhXaSyT0dTJQL_iE.roa (raw, json)
Hash identifier: GOlUHslPLLz+tbZa73G0YE4d7cBcQ/OmzzkpsVdwrLg=
Subject key identifier: 79:D7:07:88:D4:E0:2B:AA:43:85:76:92:C9:3D:1D:4C:94:0B:FE:21
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/edcHiNTgK6pDhXaSyT0dTJQL_iE.roa
Signing time: Thu 15 Sep 2022 02:45:38 +0000
ROA not before: Thu 15 Sep 2022 02:45:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=79D70788D4E02BAA43857692C93D1D4C940BFE21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:32:6c:73:00:e5:88:96:38:f0:a3:8a:e8:
85:6b:30:47:e8:b9:3c:8d:c2:7e:55:1d:f7:08:00:
b1:c4:c4:41:78:5b:06:c0:ba:03:8b:6b:b9:b9:83:
11:fa:b9:bc:19:2a:58:7e:5e:75:00:ea:aa:88:9d:
9f:01:78:be:5f:59:09:aa:ea:c6:a4:7d:e8:87:ef:
99:3e:53:69:59:18:79:38:5a:59:29:ea:98:13:cc:
5e:05:91:38:18:58:be:28:1d:1e:6f:ec:46:56:f1:
cd:76:99:e8:b2:f0:08:30:51:89:a4:44:db:1e:23:
ae:58:c8:e0:66:70:64:51:f4:16:36:0d:32:0f:49:
f2:3c:db:97:5b:b4:3b:f9:e6:df:6f:47:26:71:08:
cb:21:4e:7e:63:8a:da:b3:53:9b:b5:41:c1:38:8d:
d0:29:66:1b:65:82:2b:a6:96:23:34:7a:eb:6c:39:
c5:fd:99:f5:cb:91:62:59:cc:8e:e6:33:10:bc:1e:
41:b4:41:27:4c:91:b2:29:e5:1c:2a:53:dc:fb:d7:
c0:d2:ef:8f:b5:44:c2:a4:07:f4:89:0f:61:ed:fe:
6a:45:64:d5:c2:53:4c:0a:fc:9b:26:10:14:bb:66:
b4:96:b8:f2:3c:5f:60:32:2f:bc:88:a8:8b:94:54:
4c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D7:07:88:D4:E0:2B:AA:43:85:76:92:C9:3D:1D:4C:94:0B:FE:21
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/edcHiNTgK6pDhXaSyT0dTJQL_iE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.104.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:a1:bd:30:8b:e0:8a:5e:bb:cc:f5:b0:73:64:5d:b5:c2:eb:
e9:1e:51:59:37:87:b3:58:40:b4:d1:6b:56:6f:02:00:f3:f3:
d1:8d:fc:41:ef:73:fb:f2:76:dc:17:c4:a3:be:1e:75:89:bf:
03:54:0f:97:d4:07:b1:c6:a4:e0:51:b2:e8:af:68:e0:59:7e:
a7:1c:cc:e4:13:51:a5:15:1b:68:b6:bb:f2:b0:04:9e:27:8d:
8f:46:d7:ed:f8:35:3c:45:54:fd:b6:ab:20:27:fc:c5:c4:4c:
ef:92:5d:68:4a:e3:89:d4:51:32:57:2f:b8:56:82:3f:43:f6:
ba:c1:bc:1d:63:c3:26:a5:48:bb:8a:bf:eb:22:23:c9:b7:d6:
ba:cf:4e:b4:bc:3b:8a:9b:f3:79:13:01:5c:3a:b0:45:e2:b2:
99:2e:aa:9a:a7:b9:54:7a:41:f9:55:3c:0a:6b:60:4f:e6:70:
ef:1f:56:c3:4d:4e:37:b1:ba:46:51:df:5a:0e:20:d9:9b:c5:
fd:27:df:1d:fe:10:93:d7:2d:02:15:07:66:bc:c3:38:07:d9:
9b:8d:97:97:a2:63:40:58:a7:f2:63:fb:0f:ce:68:f6:d1:62:
6a:b4:e3:f2:40:47:a6:2d:f9:d4:2c:67:7d:2f:82:0c:9d:c6:
77:86:3a:a3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ1MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc5RDcwNzg4RDRFMDJC
QUE0Mzg1NzY5MkM5M0QxRDRDOTQwQkZFMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+uzJscwDliJY48KOK6IVrMEfouTyNwn5VHfcIALHExEF4WwbA
ugOLa7m5gxH6ubwZKlh+XnUA6qqInZ8BeL5fWQmq6sakfeiH75k+U2lZGHk4Wlkp
6pgTzF4FkTgYWL4oHR5v7EZW8c12meiy8AgwUYmkRNseI65YyOBmcGRR9BY2DTIP
SfI825dbtDv55t9vRyZxCMshTn5jitqzU5u1QcE4jdApZhtlgiumliM0eutsOcX9
mfXLkWJZzI7mMxC8HkG0QSdMkbIp5RwqU9z718DS74+1RMKkB/SJD2Ht/mpFZNXC
U0wK/JsmEBS7ZrSWuPI8X2AyL7yIqIuUVEyrAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUedcHiNTgK6pDhXaSyT0dTJQL/iEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2VkY0hpTlRnSzZwRGhYYVN5
VDBkVEpRTF9pRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wmgwDQYJKoZIhvcNAQELBQADggEBAKehvTCL4Ipeu8z1sHNkXbXC6+keUVk3h7NY
QLTRa1ZvAgDz89GN/EHvc/vydtwXxKO+HnWJvwNUD5fUB7HGpOBRsuivaOBZfqcc
zOQTUaUVG2i2u/KwBJ4njY9G1+34NTxFVP22qyAn/MXETO+SXWhK44nUUTJXL7hW
gj9D9rrBvB1jwyalSLuKv+siI8m31rrPTrS8O4qb83kTAVw6sEXispkuqpqnuVR6
QflVPAprYE/mcO8fVsNNTjexukZR31oOINmbxf0n3x3+EJPXLQIVB2a8wzgH2ZuN
l5eiY0BYp/Jj+w/OaPbRYmq04/JAR6Yt+dQsZ30vggydxneGOqM=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:09 2025 by rpki-client